{"id":"PYSEC-2022-42980","details":"Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL.","aliases":["BIT-pillow-2022-45199","CVE-2022-45199","GHSA-q4mp-jvh2-76fj"],"modified":"2023-12-06T01:02:42.645414Z","published":"2022-11-14T07:15:00Z","references":[{"type":"WEB","url":"https://github.com/python-pillow/Pillow/pull/6700"},{"type":"WEB","url":"https://bugs.gentoo.org/878769"},{"type":"WEB","url":"https://github.com/python-pillow/Pillow/releases/tag/9.3.0"},{"type":"FIX","url":"https://github.com/python-pillow/Pillow/commit/2444cddab2f83f28687c7c20871574acbb6dbcf3"}],"affected":[{"package":{"name":"pillow","ecosystem":"PyPI","purl":"pkg:pypi/pillow"},"ranges":[{"type":"GIT","repo":"https://github.com/python-pillow/Pillow","events":[{"introduced":"0"},{"fixed":"2444cddab2f83f28687c7c20871574acbb6dbcf3"}]},{"type":"ECOSYSTEM","events":[{"introduced":"9.2.0"},{"fixed":"9.3.0"}]}],"versions":["9.2.0"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/pillow/PYSEC-2022-42980.yaml"}}],"schema_version":"1.7.3"}